The job of a Cyber Security Engineer at 6point6 is to design, build and implement cyber security solutions based on a set of requirements presented by the client. To do this effectively you will need to understand the client’s infrastructure, internal processes and delivery pipelines. It is important that the solution is aligned to the client’s ever evolving needs and resources, so at 6point6 we pay special attention to this phase of the engagement to ensure the delivery of the solution can run as smoothly as possible. A Security Engineer understands the risks and threats posed to the client and exactly how their input will mitigate these.
The role requires a relatively diverse set of skills compared with other security roles. For example, there is an overlap with the functions performed by Security Analysts and DevOps, so my experiences working with these roles put me at a slight advantage when joining the team. I enjoy the varied nature of the work. One day you could be working with back-end infrastructure, the next creating the front-end dashboard for a new tool. I spend time investigating security alerts that have already happened, but also performing proactive analysis of existing security controls to figure out a way of avoiding them in the first instance.
An Engineer requires a good knowledge of technology in general, and there is always the need to understand the latest trends to stay ahead of potential threats to existing and prospective clients. Projects could include creating a secure SOC environment with a SIEM as an aggregator of computer logs, or introducing code scanning tools into the delivery pipeline when creating new web applications.
A Security Engineer does not work exclusively with technology. There are many scenarios where demonstrating good soft skills is vital to being able to perform the role effectively. You will work with Security Architects and Security Operations to ensure what you are executing is realistic. It is important to foster a good working relationship with stakeholders and vendors to ensure their buy-in. Users will also need to be trained in the solution that you’re responsible for implementing, so it is critical their perspective is considered throughout.
I have found that 6point6 recognises the value of having staff who have relevant skills and commit and contribute to a positive working environment. 6point6 is eager to invest in training and certification to develop the skills of their staff and increase their value to the company and its clients. Personal mentorship and out of work volunteering projects are encouraged. You don’t need to know every necessary skill before you start because you will learn whilst doing, as what is valued above everything else is your drive to develop yourself.
For more information about starting a career in architecture with 6point6, get in touch with recruitment.
Written by Josiah Bradbury, SecOps Engineer